Report - ksjx618.com/

Report Overview

Visited public
2023-12-07 21:58:05
Tags
URL
ksjx618.com/
Finishing URL
www.ksjx618.com/index.php
IP / ASN
206.2.188.219
#139646 HONG KONG Megalayer Technology Co.,Limited
Title
玉树股难金融服务有限公司

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
hm.baidu.com	8254	1999-10-11	2012-05-26 10:38:45	2023-12-07 05:10:23	1.2 kB	12 kB	103.235.46.191
zerossl.ocsp.sectigo.com	4049	2018-08-16	2020-05-09 21:05:29	2023-12-07 05:09:14	696 B	2.4 kB	104.18.38.233
xty8vh.flydreamdev.com	unknown	2023-01-29	2023-10-23 09:57:12	2023-12-02 03:16:26	529 B	607 B	27.124.4.49
xty8vh.necjkkwx.xyz	unknown	unknown	No data	No data	559 B	1.8 kB	27.124.4.49
ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com	unknown	2012-04-01	2023-08-27 08:13:29	2023-11-04 09:04:30	8.2 kB	433 kB	106.14.229.43
ksjx618.com	unknown	unknown	No data	No data	394 B	196 B	206.2.188.219
www.ksjx618.com	unknown	unknown	No data	No data	1.4 kB	3.6 kB	206.2.188.219

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (20)

	URL	From	Size	First Seen	Last Seen
	hm.baidu.com/hm.js?170f897e2a5211b4334a4d49bf9da494	ScriptElement	30 kB	2023-12-07	2023-12-07
Pretty URL hm.baidu.com/hm.js?170f897e2a5211b4334a4d49bf9da494 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 22:58 Last Seen2023-12-07 22:58 Times Seen1 Hash 8ef218736c023a22127aaf312d61f449 c49de72fe09190c535db797ad6029cc1783d9a56 b3bf2b2dc0785128508939a3252b44baceff10b0f5a74c25c9c52dd6014864ee Loading...

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/mobile-detect.min.js	ScriptElement	39 kB	2023-03-07	2025-05-06
Pretty URL ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/mobile-detect.min.js IP 106.14.229.43 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:47 Last Seen2025-05-06 12:10 Times Seen71 Hash ab965229553d471acbf7f2b15882c34f 4a24767afe90b0d4d213ad3ecf0d83692e9f3368 6df968e65ed4801aeaf8c0633eeeea07d7639f9048302b29d87359730e76c869 Loading...

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/layer.js	ScriptElement	20 kB	2023-04-25	2025-05-07
Pretty URL ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/layer.js IP 106.14.229.43 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:30 Last Seen2025-05-07 22:55 Times Seen146 Hash 2eb1aaf732c36835784d91a17cb33989 0c299dbb6354cbcffb908c137d50ca482f3b068d 49bead7cfddd71b31ef110e012c1e2c72b8a0e7ef6688145214610a0aa481a16 Loading...

	xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh IP 27.124.4.49 ASN #64050 BGPNET Global ASN Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 08:48 Times Seen4634955 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	Function	363 B	2024-08-20	2024-08-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-08-20 16:25 Last Seen2024-08-20 16:25 Times Seen1 Hash e5fa3e664f90fa5264b2cc412cdc4730 0ecb0dff51819abdcd28ea0fdcfd27f11462c16b 428abaccc3b724dae2fbc40c925f7947dbce8d2403ebddf58a256f89322a7368 Loading...

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/jquery.qrcode.min.js	ScriptElement	14 kB	2023-03-07	2025-05-01
Pretty URL ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/jquery.qrcode.min.js IP 106.14.229.43 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09 Last Seen2025-05-01 11:51 Times Seen129 Hash 3ddbe55bb7f94045f0e691665fa467c2 c39fd27e3dbd90d52eabea11bd1a206a4071fc81 48aae8f9290ead28771d3454402ec3698cbc0b6d1003200cde499a7ad6c2409f Loading...

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/flexible.js	ScriptElement	1.8 kB	2023-03-07	2025-05-09
Pretty URL ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/flexible.js IP 106.14.229.43 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27 Last Seen2025-05-09 03:19 Times Seen1254 Hash 8f16100cba812176880b063577711755 56f94b7f150ce8926a3e77a51622910843e3dcea e1dbb2115ee1deca2ad6e503e132e9429722f04c3bca42f3d4b87439f9f8ad86 Loading...

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/index.js	ScriptElement	13 kB	2023-12-04	2024-08-20
Pretty URL ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/index.js IP 106.14.229.43 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 21:13 Last Seen2024-08-20 16:46 Times Seen2 Hash 89bbed0eebef9563c003a92a303420d1 e676d0b0237918f4c95cdd7f17c2bc948d7c7b65 69880ebb81e44958cb0c9bcf4c82c492a1d3d67f2f688283d8de0e26676eeafd Loading...

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/base64.min.js	ScriptElement	5.1 kB	2023-03-12	2025-04-17
Pretty URL ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/base64.min.js IP 106.14.229.43 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:03 Last Seen2025-04-17 02:40 Times Seen27 Hash d49b9b2a727fa2d3cf0a7c7f9428a3fc ea8a0f5522a1a35f07e2f3ee13f542a4431b7554 1e3751e81a56748474dcf7c44ed7c4e7902e6c97a50466b54001e69f1e99e667 Loading...

	www.ksjx618.com/index.php	ScriptElement	54 B	2024-08-20	2024-08-20
Pretty URL www.ksjx618.com/index.php IP 206.2.188.219 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:25 Last Seen2024-08-20 16:25 Times Seen1 Hash 9a95accd12b65774074fee886d9aa187 2bdc364fd8abf406f0f874bd6ff1a5e74b733632 8fbfc501ae3c85e8c294599eb7792f3ecc6d9019acefe79b42188397857c5449 Loading...

	www.ksjx618.com/common.js	ScriptElement	1.5 kB	2023-11-16	2023-12-07
Pretty URL www.ksjx618.com/common.js IP 206.2.188.219 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 02:25 Last Seen2023-12-07 22:58 Times Seen4 Hash f030e0c3d47e6fa425049c358a9c444a 915aa6a3bcc0c890393bf09b3232100804579b4b cc8a581d0cdbf7f6e03d920032c3b1cd4cf88075dca5f6aa656424041e280a1a Loading...

	www.ksjx618.com/tj.js	ScriptElement	258 B	2023-12-07	2023-12-07
Pretty URL www.ksjx618.com/tj.js IP 206.2.188.219 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 22:58 Last Seen2023-12-07 22:58 Times Seen1 Hash 5bb223e664eef6fdf6cf16fa2c8d7274 244a4447b9ebb226332e0fd9d5d96cef6a11760e 52f75e6f06eba6673c76f98733b22a7dd138ed21564d97f131ecd48f0ea42e23 Loading...

	unknown	Function	37 B	2023-04-11	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:49 Last Seen2025-05-09 07:18 Times Seen34474 Hash 1c5c9160600df2d96d69a4ea16cec7ed 3cf678c9135cc952ba6970ef545035bb757a443f a3520fe88e248d2b6c9c6db93309a037ef969fe297208e5bd7e49a55bb32c808 Loading...

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/jquery-3.4.1.min.js	ScriptElement	88 kB	2023-03-07	2025-05-09
Pretty URL ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/jquery-3.4.1.min.js IP 106.14.229.43 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-05-09 02:30 Times Seen1715 Hash a6b6350ee94a3ea74595c065cbf58af0 b15f7cfa79519756dff1ad22553fd0ed09024343 412b8ff9c5ab32b9019fcd84bcd4a54c0e265a14528474f4ee45b27a20abeaeb Loading...

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/clipboard.min.js	ScriptElement	11 kB	2023-04-17	2025-03-20
Pretty URL ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/clipboard.min.js IP 106.14.229.43 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-17 04:54 Last Seen2025-03-20 16:47 Times Seen75 Hash f53654bfc8be2ce9bbf1d3c80463b532 f5313ab0c4d8e7e093b763add664c70333052467 1ccded5eb9fcb9778eacd3d32dbd89cf9e309410af64002943463008b0aec2bd Loading...

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/crypto-js.min.js	ScriptElement	48 kB	2023-03-07	2025-05-09
Pretty URL ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/crypto-js.min.js IP 106.14.229.43 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31 Last Seen2025-05-09 08:25 Times Seen92694 Hash 2ca03ad87885ab983541092b87adb299 1a17f60bf776a8c468a185c1e8e985c41a50dc27 8e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762 Loading...

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/img.js	ScriptElement	2.4 kB	2023-03-07	2025-03-15
Pretty URL ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/img.js IP 106.14.229.43 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:13 Last Seen2025-03-15 21:16 Times Seen18 Hash 008cdcd5f3794310abcce542811cdfcf 5a9569c8e4a95cbf6f551a62d5ccf1e1347f2298 a9175a3fa8f21051f0404aa91501c2bd79f6ba49bd9cf6f6a7eacc41fa09c6d5 Loading...

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/aes.min.js	ScriptElement	2.9 kB	2023-06-18	2025-03-15
Pretty URL ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/aes.min.js IP 106.14.229.43 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-18 18:28 Last Seen2025-03-15 21:16 Times Seen18 Hash e2b324b1284d3b32333a155d72455a06 35fa5d38d7be3721c9b36fb9b1c18c5370d7f6be ecc740b327ed0c9717a92a796c4c0fde8a74e1ed57393037c211344ea0c8d570 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 9b0adde5a65955d73684e77bdd46bedc	481 B	2024-08-20 16:25	2024-08-20 16:25
Pretty Observations First Seen2024-08-20 16:25 Last Seen2024-08-20 16:25 Times Seen1 Hash 9b0adde5a65955d73684e77bdd46bedc 841298a9ad8579e5013767bda70020fb77929b74 465bcbb9288f0b648cff137c8a3b062472725cdf24f599255c2bd2df76e4bb02 Loading...

		Size	First Seen	Last Seen
	#1 Write - 36c3db748a2679f9cc99cfcf975d4b60	462 B	2024-08-20 16:25	2024-08-20 16:25
Pretty Observations First Seen2024-08-20 16:25 Last Seen2024-08-20 16:25 Times Seen1 Hash 36c3db748a2679f9cc99cfcf975d4b60 befcbc87b7492f54f802628238f42d78005e4416 d68bbba7b3ef847f1234d588b5183480543fc3d9719995dd115967f828bf1334 Loading...

HTTP Transactions (29)

	URL	IP	Response	Size
	ksjx618.com/	206.2.188.219		0 B
URL User Request GET ksjx618.com/ IP 206.2.188.219:0 ASN #139646 HONG KONG Megalayer Technology Co.,Limited File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: ksjx618.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Server: nginx Date: Thu, 07 Dec 2023 21:57:49 GMT Content-Type: text/html Content-Length: 0 Connection: keep-alive Location: http://www.ksjx618.com/index.php`

	www.ksjx618.com/index.php	206.2.188.219	200 OK	606 B
URL User Request GET HTTP/1.1 www.ksjx618.com/index.php IP 206.2.188.219:80 ASN #139646 HONG KONG Megalayer Technology Co.,Limited File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (1061), with CRLF line terminators Size 606 B (606 bytes) Hash d611686178adc20ff6716c94d21a2c33 4201c7c5b7eb536ac7d44a96d41fde8842b1ea93 885dedc31387ad3f617d43228a1e2db1bc99e7689cce6514b210e18066247496 HTTP Headers `GET /index.php HTTP/1.1 Host: www.ksjx618.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Thu, 07 Dec 2023 21:57:51 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Content-Encoding: gzip`

	www.ksjx618.com/common.js	206.2.188.219	200 OK	695 B
URL GET HTTP/1.1 www.ksjx618.com/common.js IP 206.2.188.219:80 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Requested by http://www.ksjx618.com/index.php File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators Size 695 B (695 bytes) Hash f030e0c3d47e6fa425049c358a9c444a 915aa6a3bcc0c890393bf09b3232100804579b4b cc8a581d0cdbf7f6e03d920032c3b1cd4cf88075dca5f6aa656424041e280a1a HTTP Headers `GET /common.js HTTP/1.1 Host: www.ksjx618.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.ksjx618.com/index.php Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Thu, 07 Dec 2023 21:57:51 GMT Content-Type: application/x-javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Content-Encoding: gzip`

	www.ksjx618.com/tj.js	206.2.188.219	200 OK	258 B
URL GET HTTP/1.1 www.ksjx618.com/tj.js IP 206.2.188.219:80 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Requested by http://www.ksjx618.com/index.php File type ASCII text, with CRLF line terminators Size 258 B (258 bytes) Hash 5bb223e664eef6fdf6cf16fa2c8d7274 244a4447b9ebb226332e0fd9d5d96cef6a11760e 52f75e6f06eba6673c76f98733b22a7dd138ed21564d97f131ecd48f0ea42e23 HTTP Headers `GET /tj.js HTTP/1.1 Host: www.ksjx618.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.ksjx618.com/index.php Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Thu, 07 Dec 2023 21:57:51 GMT Content-Type: application/x-javascript Content-Length: 258 Connection: keep-alive`

	www.ksjx618.com/favicon.ico	206.2.188.219	200 OK	1.2 kB
URL GET HTTP/1.1 www.ksjx618.com/favicon.ico IP 206.2.188.219:80 ASN #139646 HONG KONG Megalayer Technology Co.,Limited Requested by http://www.ksjx618.com/index.php File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Size 1.2 kB (1150 bytes) Hash 7ef1f0a0093460fe46bb691578c07c95 2da3ffbbf4737ce4dae9488359de34034d1ebfbd 4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c HTTP Headers `GET /favicon.ico HTTP/1.1 Host: www.ksjx618.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://www.ksjx618.com/index.php Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Thu, 07 Dec 2023 21:57:52 GMT Content-Type: image/x-icon Content-Length: 1150 Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT Connection: keep-alive ETag: "4e0d81df-47e" Expires: Tue, 12 Dec 2023 21:57:52 GMT Cache-Control: max-age=432000 Accept-Ranges: bytes`

	hm.baidu.com/hm.js?170f897e2a5211b4334a4d49bf9da494	103.235.46.191	200 OK	11 kB
URL GET HTTP/1.1 hm.baidu.com/hm.js?170f897e2a5211b4334a4d49bf9da494 IP 103.235.46.191:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.ksjx618.com/index.php Certificate IssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT File type ASCII text, with very long lines (619) Size 11 kB (11257 bytes) Hash 8ef218736c023a22127aaf312d61f449 c49de72fe09190c535db797ad6029cc1783d9a56 b3bf2b2dc0785128508939a3252b44baceff10b0f5a74c25c9c52dd6014864ee HTTP Headers `GET /hm.js?170f897e2a5211b4334a4d49bf9da494 HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.ksjx618.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Cache-Control: max-age=0, must-revalidate Content-Encoding: gzip Content-Length: 11257 Content-Type: application/javascript Date: Thu, 07 Dec 2023 21:57:51 GMT Etag: d477cecf9f788f31610ed9311a284146 P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Server: apache Set-Cookie: HMACCOUNT=8B88C954C3A23FB1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT Strict-Transport-Security: max-age=172800`

	zerossl.ocsp.sectigo.com/	104.18.38.233		728 B
URL zerossl.ocsp.sectigo.com/ IP 104.18.38.233:0 ASN #13335 CLOUDFLARENET File type data Size 728 B (728 bytes) Hash 8c64f2ea4d3be0ffc15a3d1eef528e1e c88a16773a5e8ba19ff870f72709f6142c046e8c 221e089355fd562574ef17b0a6b4eb85202e88a1412d134974f796b14e6af6d3 HTTP Headers `POST / HTTP/1.1 Host: zerossl.ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Thu, 07 Dec 2023 21:57:52 GMT Content-Type: application/ocsp-response Content-Length: 728 Connection: keep-alive Last-Modified: Wed, 06 Dec 2023 18:19:09 GMT Expires: Wed, 13 Dec 2023 18:19:08 GMT Etag: "c88a16773a5e8ba19ff870f72709f6142c046e8c" Cache-Control: max-age=504675,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb5 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 832006d89abc2d68-ARN`

	hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1106429734&si=170f897e2a5211b4334a4d49bf9da494&v=1.3.0&lv=1&sn=42329&r=0&ww=1280&u=http%3A%2F%2Fwww.ksjx618.com%2Findex.php&tt=%E7%8E%89%E6%A0%91%E8%82%A1%E9%9A%BE%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8	103.235.46.191	200 OK	43 B
URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1106429734&si=170f897e2a5211b4334a4d49bf9da494&v=1.3.0&lv=1&sn=42329&r=0&ww=1280&u=http%3A%2F%2Fwww.ksjx618.com%2Findex.php&tt=%E7%8E%89%E6%A0%91%E8%82%A1%E9%9A%BE%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 IP 103.235.46.191:443 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Requested by http://www.ksjx618.com/index.php Certificate IssuerGlobalSign nv-sa Subjectbaidu.com Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash ad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda HTTP Headers GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1106429734&si=170f897e2a5211b4334a4d49bf9da494&v=1.3.0&lv=1&sn=42329&r=0&ww=1280&u=http%3A%2F%2Fwww.ksjx618.com%2Findex.php&tt=%E7%8E%89%E6%A0%91%E8%82%A1%E9%9A%BE%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1 Host: hm.baidu.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.ksjx618.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Cache-Control: private, max-age=0, no-cache Content-Length: 43 Content-Type: image/gif Date: Thu, 07 Dec 2023 21:57:52 GMT P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Pragma: no-cache Server: apache Set-Cookie: HMACCOUNT=669DA023ACDD57B5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT Strict-Transport-Security: max-age=172800 X-Content-Type-Options: nosniff`

	xty8vh.flydreamdev.com/8_xty8vh	27.124.4.49	301 Moved Permanently	108 B
URL GET HTTP/2 xty8vh.flydreamdev.com/8_xty8vh IP 27.124.4.49:443 ASN #64050 BGPNET Global ASN Requested by http://www.ksjx618.com/index.php Certificate IssuerZeroSSL Subject.flydreamdev.com FingerprintA9:04:91:C5:39:B3:C3:F1:A2:AB:69:1A:BA:44:EC:DE:0E:34:F4:AC ValidityMon, 02 Oct 2023 00:00:00 GMT - Sun, 31 Dec 2023 23:59:59 GMT File type HTML document, ASCII text Size 108 B (108 bytes) Hash 3b4e42927faff9c6e3417eb1943c9165 049206561a6c3f96048610a0490020f175c63d01 4d9be17413c9a9b496a8892a3581066cdb2e81866b1aa671969ab4d65c8e4957 HTTP Headers GET /8_xty8vh HTTP/1.1 Host: xty8vh.flydreamdev.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://www.ksjx618.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 301 Moved Permanently access-control-allow-credentials: true access-control-allow-headers: access-control-allow-methods: PUT, GET, POST, DELETE, HEAD, OPTIONS, PATCH access-control-allow-origin: * access-control-expose-headers: * cache-control: no-cache content-type: text/html; charset=utf-8 date: Thu, 07 Dec 2023 21:57:52 GMT location: https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh server: nginx x-cache: MISS content-length: 108 X-Firefox-Spdy: h2`

	zerossl.ocsp.sectigo.com/	104.18.38.233		728 B
URL zerossl.ocsp.sectigo.com/ IP 104.18.38.233:0 ASN #13335 CLOUDFLARENET File type data Size 728 B (728 bytes) Hash 2acc6c7e1af2e7ee9d407a494e6f8564 bc42f8ebf76f8d7c3662358c3b4b0560c6947593 0800a8d52b2c6e908e517e1a92d744f06e9c2456bfbd88a79c2933d2e3cc26aa HTTP Headers `POST / HTTP/1.1 Host: zerossl.ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Thu, 07 Dec 2023 21:57:54 GMT Content-Type: application/ocsp-response Content-Length: 728 Connection: keep-alive Last-Modified: Wed, 06 Dec 2023 13:19:39 GMT Expires: Wed, 13 Dec 2023 13:19:38 GMT Etag: "bc42f8ebf76f8d7c3662358c3b4b0560c6947593" Cache-Control: max-age=486703,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb5 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 832006e888882d68-ARN`

	xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh	27.124.4.49	200 OK	1.4 kB
URL GET HTTP/2 xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh IP 27.124.4.49:443 ASN #64050 BGPNET Global ASN Requested by http://www.ksjx618.com/index.php Certificate IssuerZeroSSL Subject.necjkkwx.xyz FingerprintD6:18:D5:6D:76:3C:76:82:84:88:CF:35:53:D4:F8:3E:2C:17:BF:7D ValiditySat, 11 Nov 2023 00:00:00 GMT - Fri, 09 Feb 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text Size 1.4 kB (1425 bytes) Hash 2e705d488edf40fc075c05bb6678e309 9e03cbc24e6e27b79da70b91abe63ee57d3e946c 883bfc03fe2112e30995e9945e509f0d261a9cd474077d5b96df4e0f0f5cf0d0 HTTP Headers GET /index8.html?notjk=s15we&inviteCode=xty8vh HTTP/1.1 Host: xty8vh.necjkkwx.xyz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://www.ksjx618.com/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK access-control-allow-credentials: true access-control-allow-methods: PUT, GET, POST, DELETE, HEAD, OPTIONS, PATCH content-encoding: gzip content-type: text/html date: Thu, 07 Dec 2023 21:25:48 GMT etag: W/"649042d4-1093" last-modified: Thu, 07 Dec 2023 21:25:48 GMT server: nginx vary: Accept-Encoding x-cache: HIT, policy, disk content-length: 1425 X-Firefox-Spdy: h2`

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/css/index.css	106.14.229.43	200 OK	1.3 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/css/index.css IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type ASCII text, with CRLF line terminators Size 1.3 kB (1269 bytes) Hash fe250f4154a1d221ecd211d3df718f84 20d37220d839f470eeee870615d8b7981bb61bd3 986e232e373ade0b0070aeda370a8cd032208cfc1cf80a82f7f1d271882011af HTTP Headers `GET /css/index.css HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE4D7364433369E5796 Last-Modified: Mon, 19 Jun 2023 11:55:31 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 17809185256794603698 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: /iUPQVSh0iHs0hHT33GPhA== x-oss-server-time: 3 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/css/layer.css	106.14.229.43	200 OK	2.9 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/css/layer.css IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type Unicode text, UTF-8 text, with very long lines (13971), with CRLF line terminators Size 2.9 kB (2868 bytes) Hash 4c848a076d3ec40a2b8cae1934794fe4 647811ba1d74c233b711a17427ccee3043f47c2c 4f45f2d8d41a03d525085d277cccea3d11c4a3e6f3f09876f6baaaa531e8b5ec HTTP Headers `GET /css/layer.css HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE48DF374343814589E Last-Modified: Mon, 19 Jun 2023 11:55:31 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 4111160838695725695 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: TISKB20+xAorjK4ZNHlP5A== x-oss-server-time: 3 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/clipboard.min.js	106.14.229.43	200 OK	3.4 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/clipboard.min.js IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type Unicode text, UTF-8 text, with very long lines (10645), with CRLF line terminators Size 3.4 kB (3357 bytes) Hash 7df83578855477e4921ff3a951181343 dc144353ec85169bb3c5f3c6d68b4e75f9bf28ea c168d3a04c45a631be76437054619a4a3b30107960cb9730be96012fef5762b0 HTTP Headers `GET /js/clipboard.min.js HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE4A50D773237F9A177 Last-Modified: Mon, 19 Jun 2023 11:55:24 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 2062624350501285953 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: ffg1eIVUd+SSH/OpURgTQw== x-oss-server-time: 2 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/jquery-3.4.1.min.js	106.14.229.43	200 OK	31 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/jquery-3.4.1.min.js IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type ASCII text, with very long lines (65450), with CRLF line terminators Size 31 kB (30726 bytes) Hash a6b6350ee94a3ea74595c065cbf58af0 b15f7cfa79519756dff1ad22553fd0ed09024343 412b8ff9c5ab32b9019fcd84bcd4a54c0e265a14528474f4ee45b27a20abeaeb HTTP Headers `GET /js/jquery-3.4.1.min.js HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE476145430316134CD Last-Modified: Mon, 19 Jun 2023 11:55:24 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 13986161013320619420 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: prY1DulKPqdFlcBly/WK8A== x-oss-server-time: 2 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/mobile-detect.min.js	106.14.229.43	200 OK	16 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/mobile-detect.min.js IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type ASCII text, with very long lines (33237), with CRLF line terminators Size 16 kB (16302 bytes) Hash ab965229553d471acbf7f2b15882c34f 4a24767afe90b0d4d213ad3ecf0d83692e9f3368 6df968e65ed4801aeaf8c0633eeeea07d7639f9048302b29d87359730e76c869 HTTP Headers `GET /js/mobile-detect.min.js HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE4371F1437383B7CA1 Last-Modified: Mon, 19 Jun 2023 11:55:23 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 14235166219191525613 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: q5ZSKVU9RxrL9/KxWILDTw== x-oss-server-time: 2 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/base64.min.js	106.14.229.43	200 OK	2.1 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/base64.min.js IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type ASCII text, with very long lines (4803), with CRLF line terminators Size 2.1 kB (2074 bytes) Hash d49b9b2a727fa2d3cf0a7c7f9428a3fc ea8a0f5522a1a35f07e2f3ee13f542a4431b7554 1e3751e81a56748474dcf7c44ed7c4e7902e6c97a50466b54001e69f1e99e667 HTTP Headers `GET /js/base64.min.js HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE41171CD31349468CB Last-Modified: Mon, 19 Jun 2023 11:55:24 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 2942813708830111997 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: 1JubKnJ/otPPCnx/lCij/A== x-oss-server-time: 3 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/flexible.js	106.14.229.43	200 OK	929 B
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/flexible.js IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type Unicode text, UTF-8 text, with very long lines (1793), with no line terminators Size 929 B (929 bytes) Hash 8f16100cba812176880b063577711755 56f94b7f150ce8926a3e77a51622910843e3dcea e1dbb2115ee1deca2ad6e503e132e9429722f04c3bca42f3d4b87439f9f8ad86 HTTP Headers `GET /js/flexible.js HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE4D736443336145896 Last-Modified: Mon, 19 Jun 2023 11:55:24 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 3796639399158809320 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: jxYQDLqBIXaICwY1d3EXVQ== x-oss-server-time: 2 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/jquery.qrcode.min.js	106.14.229.43	200 OK	4.8 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/jquery.qrcode.min.js IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type ASCII text, with very long lines (544), with CRLF line terminators Size 4.8 kB (4777 bytes) Hash 3ddbe55bb7f94045f0e691665fa467c2 c39fd27e3dbd90d52eabea11bd1a206a4071fc81 48aae8f9290ead28771d3454402ec3698cbc0b6d1003200cde499a7ad6c2409f HTTP Headers `GET /js/jquery.qrcode.min.js HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE4A50D77323747A277 Last-Modified: Mon, 19 Jun 2023 11:55:23 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 12554479276235362360 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: PdvlW7f5QEXw5pFmX6Rnwg== x-oss-server-time: 2 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/aes.min.js	106.14.229.43	200 OK	1.1 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/aes.min.js IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type ASCII text, with very long lines (2879), with no line terminators Size 1.1 kB (1118 bytes) Hash e2b324b1284d3b32333a155d72455a06 35fa5d38d7be3721c9b36fb9b1c18c5370d7f6be ecc740b327ed0c9717a92a796c4c0fde8a74e1ed57393037c211344ea0c8d570 HTTP Headers `GET /js/aes.min.js HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE47614543031C134CD Last-Modified: Mon, 19 Jun 2023 11:55:24 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 10223426748253376231 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: 4rMksShNOzIzOhVdckVaBg== x-oss-server-time: 2 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/crypto-js.min.js	106.14.229.43	200 OK	17 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/crypto-js.min.js IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type ASCII text, with very long lines (48316), with no line terminators Size 17 kB (16589 bytes) Hash 2ca03ad87885ab983541092b87adb299 1a17f60bf776a8c468a185c1e8e985c41a50dc27 8e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762 HTTP Headers `GET /js/crypto-js.min.js HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE48DF374343873589E Last-Modified: Mon, 19 Jun 2023 11:55:24 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 2111864505403207597 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: LKA62HiFq5g1QQkrh62ymQ== x-oss-server-time: 2 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/layer.js	106.14.229.43	200 OK	7.0 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/layer.js IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type Unicode text, UTF-8 text, with very long lines (19764), with CRLF line terminators Size 7.0 kB (6965 bytes) Hash a1f2307bc799b1b76c577cd37a944b21 902efb4d447170c39f50b211f52eff408d430ee4 727301613d4e4aa793a0ef89dd8a3aa5e07f08544db7681b839244b5c565ecd7 HTTP Headers `GET /js/layer.js HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE4371F143738907CA1 Last-Modified: Mon, 19 Jun 2023 11:55:23 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 4863842937101709751 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: ofIwe8eZsbdsV3zTepRLIQ== x-oss-server-time: 2 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/img.js	106.14.229.43	200 OK	958 B
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/img.js IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type ASCII text, with CRLF line terminators Size 958 B (958 bytes) Hash 008cdcd5f3794310abcce542811cdfcf 5a9569c8e4a95cbf6f551a62d5ccf1e1347f2298 a9175a3fa8f21051f0404aa91501c2bd79f6ba49bd9cf6f6a7eacc41fa09c6d5 HTTP Headers `GET /js/img.js HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE41171CD3134FF68CB Last-Modified: Mon, 19 Jun 2023 11:55:24 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 13617023485140978959 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: AIzc1fN5QxCrzOVCgRzfzw== x-oss-server-time: 3 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/index.js	106.14.229.43	200 OK	3.5 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/index.js IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type Unicode text, UTF-8 text, with CRLF line terminators Size 3.5 kB (3518 bytes) Hash 8653129ccda34eb1159759dbc40f61a9 dceebb93f7cf95db5d82b40f12ad7bd52f6f7274 ff09baf3ec353e53fb9e2aef07ac577b2922a988008b84fb5f6bb29b96b7bc73 HTTP Headers `GET /js/index.js HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE4D736443336615896 Last-Modified: Sun, 03 Dec 2023 15:28:22 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 11917160470594191715 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: hlMSnM2jTrEVl1nbxA9hqQ== x-oss-server-time: 3 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/img/ic_back.png	106.14.229.43	200 OK	573 B
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/img/ic_back.png IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data Size 573 B (573 bytes) Hash 586864b3954f91fcce4526911db72eba f30027dff5fc9ee4fc4d7a5930fd1b75241253eb c0e4df932db0b6e863eb64f4799bb16a226dadcf997a5725e207720bc9e362ec HTTP Headers `GET /img/ic_back.png HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: image/png Content-Length: 573 Connection: keep-alive x-oss-request-id: 65723FE48DF3743438E2589E Accept-Ranges: bytes ETag: "586864B3954F91FCCE4526911DB72EBA" Last-Modified: Mon, 19 Jun 2023 11:55:30 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 18282880009502769637 x-oss-storage-class: Standard x-oss-ec: 0048-00000103 Content-Disposition: attachment x-oss-force-download: true Content-MD5: WGhks5VPkfzORSaRHbcuug== x-oss-server-time: 2

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/img/wechar.png	106.14.229.43	200 OK	15 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/img/wechar.png IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type PNG image data, 375 x 519, 8-bit colormap, non-interlaced\012- data Size 15 kB (14799 bytes) Hash 9a5f7d430f1d61ca30d513bcef0ccba1 145d9690a72aab860b81a8e2e2cb5a02eedb8d36 6dcf2be9223712ee7787c1a4ca73bac46f73d7f3631191cc369752029868fd94 HTTP Headers `GET /img/wechar.png HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:56 GMT Content-Type: image/png Content-Length: 14799 Connection: keep-alive x-oss-request-id: 65723FE476145430313735CD Accept-Ranges: bytes ETag: "9A5F7D430F1D61CA30D513BCEF0CCBA1" Last-Modified: Mon, 19 Jun 2023 11:55:24 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 16033254185726029673 x-oss-storage-class: Standard x-oss-ec: 0048-00000103 Content-Disposition: attachment x-oss-force-download: true Content-MD5: ml99Qw8dYcow1RO87wzLoQ== x-oss-server-time: 2

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/skin/layer.css	106.14.229.43	200 OK	2.9 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/js/skin/layer.css IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type Unicode text, UTF-8 text, with very long lines (13971), with CRLF line terminators Size 2.9 kB (2868 bytes) Hash 4c848a076d3ec40a2b8cae1934794fe4 647811ba1d74c233b711a17427ccee3043f47c2c 4f45f2d8d41a03d525085d277cccea3d11c4a3e6f3f09876f6baaaa531e8b5ec HTTP Headers `GET /js/skin/layer.css HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:57 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding x-oss-request-id: 65723FE576145430310036CD Last-Modified: Mon, 19 Jun 2023 11:55:10 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 4111160838695725695 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: TISKB20+xAorjK4ZNHlP5A== x-oss-server-time: 3 Content-Encoding: gzip

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/img/n8.ccc	106.14.229.43	200 OK	75 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/img/n8.ccc IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 75 kB (74776 bytes) Hash ba8230d590fffd0a0d718b5f0af8c826 e5774c260798458575cec4ea412bb3fd61a6f8bc e5d946e27928ae7465b4e755d5c61bfa245cab9d8da34b02ab599ea90070e66d HTTP Headers `GET /img/n8.ccc HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ Content-Type: text/plain;charset=UTF-8 Origin: https://xty8vh.necjkkwx.xyz DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:58 GMT Content-Type: application/octet-stream Content-Length: 74776 Connection: keep-alive x-oss-request-id: 65723FE6A9FF3B3137FBC205 Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD Access-Control-Max-Age: 0 Accept-Ranges: bytes ETag: "BA8230D590FFFD0A0D718B5F0AF8C826" Last-Modified: Mon, 19 Jun 2023 11:55:24 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 7977460176673574616 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: uoIw1ZD//QoNcYtfCvjIJg== x-oss-server-time: 2

	ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/img/down_bg.ccc	106.14.229.43	200 OK	238 kB
URL GET HTTP/1.1 ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com/img/down_bg.ccc IP 106.14.229.43:443 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Requested by https://xty8vh.necjkkwx.xyz/index8.html?notjk=s15we&inviteCode=xty8vh Certificate IssuerGlobalSign nv-sa Subject.oss-cn-hangzhou.aliyuncs.com Fingerprint28:EC:03:F3:09:00:E7:19:16:23:30:2B:8E:83:6F:4C:E5:34:A2:60 ValidityThu, 14 Sep 2023 03:15:01 GMT - Mon, 18 Mar 2024 06:06:06 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 238 kB (238104 bytes) Hash 76ae77e080d0668b66ec83893ace9280 88c9300c3d1a709545b001f5fe0c6447486545cf 5f0a6f566fdf502414bd1afd3c81e76d2562dcf0c253fea487ad034b3dd0b0b1 HTTP Headers GET /img/down_bg.ccc HTTP/1.1 Host: ldzmpkdqyn.oss-cn-shanghai.aliyuncs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://xty8vh.necjkkwx.xyz/ Content-Type: text/plain;charset=UTF-8 Origin: https://xty8vh.necjkkwx.xyz DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Thu, 07 Dec 2023 21:57:58 GMT Content-Type: application/octet-stream Content-Length: 238104 Connection: keep-alive x-oss-request-id: 65723FE68E97533331A72514 Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, HEAD Access-Control-Max-Age: 0 Accept-Ranges: bytes ETag: "76AE77E080D0668B66EC83893ACE9280" Last-Modified: Mon, 19 Jun 2023 11:55:31 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 14725755091870048850 x-oss-storage-class: Standard x-oss-ec: 0048-00000113 Content-Disposition: attachment x-oss-force-download: true Content-MD5: dq534IDQZotm7IOJOs6SgA== x-oss-server-time: 1

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash